UK Motorhome Information, Motorhome fun, American RV Forums, Articles, Reviews, Sales, Campsites
  Click here to Create an account Motorhome News RSS Feed ::  Home  ::  Subscriptions  ::  Your Account  ::  Forums ::  Directory::  Editorial  :: Motorhome Forums RSS Feed   Add to Google
Motorhome Facts :: View topic - Spyware removal
 
Log in Register Forum FAQ Memberlist Search

BookmarksBookmarks  •  Watched TopicsWatched Topics  •  Arcade  •  Attachments  •  Buddy List  •  Ranks  •  Rules  •  Smilies List  •  Stats  •  
Forums Staff  • Medals  •  Courthouse
Google  
Sponsor this forum
>> Welcome to Motorhome Facts!

You are a Guest, please Join now to allow full access to the website and be part of our community. You can register by clicking the "Click Here to create an account" link at the top left of the page under our Logo

Latest News
Next Rally is @ Motorhome & US RV Show.Shepton Mallet on 12/09/2008 in Somerset
Motorhome Facts Forum Index -> Computer Help -> Spyware removal
Post new topic  Reply to topic   Printer-friendly version co.mments Facebook del.icio.us digg blogmarks blinklist feed me links Furl Linkagogo Reddit Shadows Smarking simpy Spurl meneame technorati Yahoo Google :: :: View previous topic :: View next topic 
Spyware removal
209554 PostPosted: Thu Feb 08, 2007 10:12 pm Thank this member for this postReply with quote
Bagshanty Subscriber 26/04/2009 
 
Joined: Jul 24, 2005
Posts: 579
Thanked 19 times in 19 posts

MH: Rapido 746 "Cosy Van Tottie"

Medals: None
uk.gif

Status: Offline
Events Attended:1




Whilst assisting a colleague at work to remove some particularly resilient malware, I came across this site, with some excellent tools and a brilliant web tutorial.

http://www.microsoft.com/technet/sysinternals/Processesandthreadsutilities.mspx

Process Explorer is like Task Manager on steroids. Autoruns gives the most comprehensive list of autoruns anywhere, and numerous other tools.

If you follow the Process Explorer link, towards the bottom is a link to a video of a live presentation given by someone who really knows his subject, - detecting and removing malware. Systinternals used to be an independent site but is now part of MS Technet. You will need to view the video in IE - it doesn't like Firefox.

You do need to register with Windows Live ID, a slightly convoluted process, but worth the effort.

Finally, I understand how rootkits work.

______________________________________________________________
"A motorhome is for life, not just for holidays."
View user's profile Send private message Visit poster's website
209577 PostPosted: Thu Feb 08, 2007 10:45 pm Thank this member for this postReply with quote
twooks  
 
Joined: May 09, 2005
Posts: 1404
Thanked 9 times in 8 posts

MH: Bilbo Nektar

Medals: None
eu.gif

Status: Offline
Posts Left: 0
Events Attended:0




oh my god - microsoft!!!! aaarrrggghhhh

try checking these guys out:
Only registered users can see links on our Forum
Join Now or Login



Cool

______________________________________________________________

But itīs all right now, I learned my lesson well.
You see, ya canīt please everyone, so ya got to please yourself
Ricky Nelson
View user's profile
209595 PostPosted: Thu Feb 08, 2007 11:10 pm Thank this member for this postReply with quote
Bagshanty Subscriber 26/04/2009 
 
Joined: Jul 24, 2005
Posts: 579
Thanked 19 times in 19 posts

MH: Rapido 746 "Cosy Van Tottie"

Medals: None
uk.gif

Status: Offline
Events Attended:1




1. Sysinternals.com was an independent site until 12 months or so ago

2. MS probably knows better than anyone else how Windows works (indeed, that is the EU complaint, that they do not pass that info out)

3. when the standard removal tools don't work, and you need to open the bonnet and get your hands dirty, this is the toolkit you need.

... but if you really hate MS the you must be using a Mac or Linux?

______________________________________________________________
"A motorhome is for life, not just for holidays."
View user's profile Send private message Visit poster's website
209608 PostPosted: Thu Feb 08, 2007 11:21 pm Thank this member for this postReply with quote
geraldandannie Subscriber 13/06/2009 
Moderator
 
Joined: Jun 04, 2006
Posts: 10081
Thanked 436 times in 424 posts

MH: Chausson Welcome 85
Location: East London / South Essex

Medals: None
eu.gif

Status: Offline
Events Attended:5




I had a quick shufty at the site Twooks posted. I downloaded Blacklight from
Only registered users can see links on our Forum
Join Now or Login
, and it's trundling away in the background at the moment, not affecting anything else speedwise. I'll see if it finds anything.

Maybe I should find out about these rootkits Confused

Gerald
View user's profile Send private message Click Here to see my Motorhome Photo Gallery
209619 PostPosted: Thu Feb 08, 2007 11:47 pm Thank this member for this postReply with quote
Bagshanty Subscriber 26/04/2009 
 
Joined: Jul 24, 2005
Posts: 579
Thanked 19 times in 19 posts

MH: Rapido 746 "Cosy Van Tottie"

Medals: None
uk.gif

Status: Offline
Events Attended:1




for free anti root kit scan, see
Only registered users can see links on our Forum
Join Now or Login


Sophos is THE AV product, as far as I am concerned (pity their website is useless!)

______________________________________________________________
"A motorhome is for life, not just for holidays."
View user's profile Send private message Visit poster's website
209622 PostPosted: Thu Feb 08, 2007 11:52 pm Thank this member for this postReply with quote
geraldandannie Subscriber 13/06/2009 
Moderator
 
Joined: Jun 04, 2006
Posts: 10081
Thanked 436 times in 424 posts

MH: Chausson Welcome 85
Location: East London / South Essex

Medals: None
eu.gif

Status: Offline
Events Attended:5




Bagshanty wrote:
Sophos is THE AV product, as far as I am concerned (pity their website is useless!)

Thanks for the link. We use Sophos in all of our schools - it's fine, and the Enterprise Console is great for managing the AV system.

However, it doesn't block intrusions - it only detects stuff once it's in. At least, I think that's right. My Norton at home detects (and blocks) possible attacks as they're happening.

Gerald

Edit: the Sophos website says it does detect and block. So there you go.
View user's profile Send private message Click Here to see my Motorhome Photo Gallery
Sophos
209700 PostPosted: Fri Feb 09, 2007 11:27 am Thank this member for this postReply with quote
Rapide561 Subscriber 25/01/2009 
 
Joined: Oct 01, 2005
Posts: 8923
Thanked 586 times in 567 posts

MH: Swift Kon-tiki 669
Location: Moniga del Garda

Medals: None
italy.gif

Status: Offline
Events Attended:7




Hi

We had Sophos at work and that along with the other systems in place, used to block e mails containing words such as peacock etc etc

I will leave it to you.

Russell

______________________________________________________________
Never been here before
I´m intrigued, I´m unsure
I´m searching for more
I´ve got something that´s all mine
I´ve got something that´s all mine
Take me somewhere I can breathe
I´ve got so much to see
This is where I want to be
In a place I can call mine
In a place I can call mine

View user's profile Send private message Send e-mail MSN Messenger Click Here to see my Motorhome Photo Gallery
209705 PostPosted: Fri Feb 09, 2007 11:47 am Thank this member for this postReply with quote
Bagshanty Subscriber 26/04/2009 
 
Joined: Jul 24, 2005
Posts: 579
Thanked 19 times in 19 posts

MH: Rapido 746 "Cosy Van Tottie"

Medals: None
uk.gif

Status: Offline
Events Attended:1




Writing as our company's security manager (next 54 days only!), who administers both the Sophos AV solution and the email monitoring solution, (Mimesweeper), I can assure you that Sophos does not content check, except against virus signatures. (And Sophos signatures are always published significantly faster than their competitors, sometimes 24 hours ahead of Norton, in my experience).

Neither does Mimesweeper block on words like peacock or Scunthorpe. I have done extensive trials on this in the past, and I'm convinced it is an urban myth. What is useful is the ability to block all executable attachments. This has blocked many viruses for which signatures are not yet available, and I employ a similar defence at home.

However, my shipmate on the Sirius, ex chief stoker Bill Cock, does have email problems from time to time.

______________________________________________________________
"A motorhome is for life, not just for holidays."
View user's profile Send private message Visit poster's website
Re: Spyware removal
211567 PostPosted: Wed Feb 14, 2007 8:12 am Thank this member for this postReply with quote
Bagshanty Subscriber 26/04/2009 
 
Joined: Jul 24, 2005
Posts: 579
Thanked 19 times in 19 posts

MH: Rapido 746 "Cosy Van Tottie"

Medals: None
uk.gif

Status: Offline
Events Attended:1




Bagshanty wrote:
Whilst assisting a colleague at work to remove some particularly resilient malware, ......


... and a follow up, he found the only tool that removed this spyware was Counterspy, from Sunbelt Software. None of the other tools he tried could touch it.

______________________________________________________________
"A motorhome is for life, not just for holidays."
View user's profile Send private message Visit poster's website
  Motorhome Facts Forum Index -> Computer Help
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum
 		All times are GMT + 1 Hour  
Page 1 of 1